Logging in seems to work quite allright. But after having logged in, I also want to be able to log out, right? Right, so I have set up /auth/logout.jsp so that it invalidates the session and then redirects to the main page using an HTTP refresh. So far so good, the first time I access the logout-page, it works perfectly. However, every subsequent time I access logout.jsp, it seems I'm just getting a cached response and the session is not actually invalidated. Am I missing something here?